There are apparently millions of phishing attacks each day – but what do they look like?
Phishing is a type of cyber attack that lures users into giving up personal information to the attacker. There are many ways to do this. CBR has looked at some common types of phishing attack and how they work.
1. Carrot or stick
The most basic form of a phishing attack is generic and aims wide rather than deep.
The communication will simply ask for information under a pretext or invite the recipient to click a link. It could be masquerading as a legitimate company, such as a bank, and saying that it requires your login details.
Often the attack will exploit the recipient’s fear in order to provoke a reaction. It could, for example, claim to be from law enforcement officials and claim that the recipient had committed a crime, asking for personal details to verify their identity.
It could also claim that they were the victim of a cyber attack or that they are the winner of a contest.
A recent phishing scam in the UK sent emails purportedly from the Land Registry. The Government said that the fake emails could be identified by the domain name of the sender.
It is unlikely that a legitimate company will ever ask for potentially sensitive financial information via email. If you do think the email is legitimate, try to contact the company via phone instead.